|
| From: | Joshua Rogers |
| Subject: | Re: [Nano-devel] Vulnerability |
| Date: | Mon, 14 Jan 2013 12:26:46 +1100 |
| User-agent: | Mozilla/5.0 (X11; Linux i686; rv:17.0) Gecko/17.0 Thunderbird/17.0 |
|
Well, it is classified as a
vulnerability, even if it is a very small one(DoS)
But I can't submit it until it's fixed. But if it's nothing serious, and it's just a DoS, it doesn't really matter. I'm just trying to make it so when you google my name, people don't find my previous Black Hat activities, which I've since changed. And a CVE entry with like that would be great. Once it's patched I'll email them. Thanks Joshua Rogers - Retro Game
Collector && IT Security Specialist
On 14/01/13 05:01, Eitan Adler wrote:gpg pubkey On 13 January 2013 12:58, Mike Frysinger <address@hidden> wrote:On Sunday 13 January 2013 10:27:03 Eitan Adler wrote:On 13 January 2013 04:26, Joshua Rogers <address@hidden> wrote:No problem! If it is possible, could a CVE be assigned? If it's not a cmd execution, it could atleast be classed as a DoSTo get a CVE assigned email address@hidden with the name of the program, an explanation of the bug, and a link to the diff.random bugs that come up in nano dont really ned cves/etc imo. search the list and tracker -- ive posted many such reports and they arent security vulns.I was assuming there was a security issue here: I havn't had a chance to try this one out yet. |
| [Prev in Thread] | Current Thread | [Next in Thread] |